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X SMART CARDS CUSTOMIZING SYSTEM 

<hh - > 

r > The invention relates to smart cards and, more 

particularly, a system for. the mass customizing of 

microcircuit cards. 

Microcircuit card means a plastic card in the 

thickness of which a microcircuit is housed. According 

to the usage of the card, it is necessary to record 

data issuing from a data and calculation file in the 

memory of a microcircuit, notably a chip with or 

without a microprocessor. These operations are called 

"customization" of the microcircuit card and are 

carried out by a customizing machine. The time taken to 

carry out these operations is between 15 and 30 seconds 

per card for cards used in mobile telephones, for 

example . 

These operations are carried out by a machine 
comprising several customizing lines or appliances in 
parallel, which each comprise a reader/encoder in which 
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the customizing program is downloaded and which 
functions autonomously by means of a microprocessor. 



communication bus associated with a control device. 

However, in order to take account of the security 
aspects, it is necessary to provide additional 
functions, such as: 

- calculating so-called transportation keys for 
releasing the microcircuit before the customizing 
operations , 

- calculating a session key for protecting the 
data to be introduced into the card, and 

- calculating a certificate which authorises the 
creation of a directory or a file. 

These functions entail a dialogue between each 
customizing appliance and a peripheral device, notably 
for each file or directory . creation, and. hence a very 
high exchange of data . 

At the present time, these data exchanges are 
effected by means of a communication bus which connects 
each customizing appliance, station . or line to a 
peripheral encrypting device capable of calculating the 
certificates for creating each file, and this for each 
card. However, the . capacity of the bus is .insufficient 
for managing such a volume of data exchanges . 



y^briQ aim of the present invention is therefore to 
produce a smart card customizing system which does not 
have the limitations of the systems of the prior art, 
by improving the data exchange flows between the 



The customized data of each card, are supplied to 
the reader/encoder by a peripheral device via a 




customizing lines or appliances and the peripheral 
encrypting devices. 

This aim is achieved by using an architecture for 
communication between the customizing appliances or 
lines and the peripheral devices in which on the one 
hand the customizing lines receive customizing data 
through a communication and on the other hand a data 
server supplies the encrypting data to the customizing 
lines by means of computer links, the encrypting data 
being supplied by peripheral encrypting devices via 
computer links. 

This architecture makes it possible to limit the 
data traffic on the communication bus by allocating it 
to the customizing data, the encrypting data being 
conveyed by other computer links. 

Moreover, in the prior art, each customizing 
station is designed to act on a data server in a 
predetermined fashion. 

The drawback lies in the risk of a request to a 
data server from two or more customizing stations at 
the same time when another data server is available. 
This causes a wait in the task of the customizing 
station. 

Another aim of the invention is therefore to 
optimise the response time of a data server vis-a-vis a 
request from a customizing station. 

This aim is achieved by having recourse to an 
interface management means, disposed between the 
customizing machines and the servers, which is informed 
about and takes account of the availability of a server 



for responding as quickly as possible to the request 
from a customizing station. 

The invention concerns a smart card customizing 
system characterised in that it comprises: 

- at least one customizing machine each equipped 
with at least one customizing station sending 
customizing data requests; 

- at least one customizing data server delivering 
customizing data; 

- at least one management interface connected on 
the one hand to at least one of the said customizing 
machines and on the other hand to at least one of the 
said data servers by a bi-directional link, the said 
management interface receiving the said requests, 
transmitting them to at least one of the said servers, 
receiving the corresponding response and transmitting 
it to the requesting customizing station, 

characterised in that the said management 
interface is able to manage the transmission of the 
applications/requests or customizing data requirements 
to at least one of the said servers as soon as they are 
received and as soon as the said server is available. 

The management interface coordinates the execution 
at the same time or periodically and for each 
customizing station of at least the following types of 
task: 

monitoring the occurrence of a request, 
monitoring the availability of each server, 
transmitting the request to a server as soon as 
it is available, 



receiving the data responding to the request, 
transmitting the response data to the 
requesting customizing station as soon as they are 
received. 

This management interface comprises: 

- a computer equipped with a multiway card, 

- each data server and each customizing station 
being respectively connected to the computer by a 
serial link on the multiway card, 

- a multitask real-time operating system for 
performing the said tasks at the same time and in real 
time. 

Thus this system makes it possible, for a 
production site, to determine the necessary and 
sufficient data server requirements with respect to a 
profitability or productivity objective. In fact, in 
the prior art, in order to achieve the same objective, 
it was necessary to have excess data servers, which can 
be very costly. 

The invention also makes it possible: 

- to interface all types of machines coming from 
different manufacturers and having different 
communication configurations; - 

- to optimise to the maximum possible extent the 
sharing of resources external to the customizing 
method, namely: 

data server, 

enciphering "black" boxes, 



any other peripheral necessary for electrical 
customization (access control module, notably in the 
form of a smart card etc) ; 

- to optimise to the maximum possible extent the 
sharing of these resources with one or more customizing 
machines; 

- to physically separate the data server (which 
may be physically in a very highly protected area, and 
to dialogue with the data server/management interface 
in a protected message) . 

This data server/management interface is based on 
a real-time PC system which is "cascadable", which 
means that several management interfaces can be 
connected together in a cascade by a local network. It 
is thus possible to increase the power of the 
customizing system, the operating system of a 
management interface being able to manage the whole 
directly. This ability is particularly advantageous 
since it confers very great flexibility on - the 
customizing system. 

' ^^70ther characteristics and advantages of the 
present invention will emerge from a reading of the 
following description of a particular example 
embodiment, the said description being given in 
relation to the accompanying drawing, in which: 

- Figure 1 is a functional diagram of a smart card 
customizing system according to the invention, and 

- Figure 2 is a diagram of a device which makes it 
possible to convert a connector into two serial-type 
computer links. 



A smart card customizing system according to the 
invention comprises, for example, four customizing 
machines MP1 to MP4, which are each connected, to a data 
server SD by computer links of the serial type LS . 

Each customizing machine MP1, MP2, MP3 or MP4 for 
smart cards CP comprises, for example for the machine 
MP1, 

- for example six customizing lines or stations 
PP1 to PP6 in parallel for simultaneously customizing 
six smart cards. CP1 to CP6, 

- a control device DC containing the customizing 
data for each card to be customized, 

- a communication bus BC for transmitting to each 
customizing station PP1 to PP6 the customizing data for 
each smart card CP1 to CP6 supplied by the control 
device DC, 

- computer links of the serial type LSI to LS6, at 
least one per customizing station, for transmitting to 
each customizing station the cryptographic data for 
each card being customized. 

Each customizing station PP1 to PP6 comprises: 

- a reader/encoder referenced LEI for the station 
PP1 and LE6 for the station PP6, this reader/encoder, 
more commonly referred to as a reader, being ■ for 
example the one sold by the applicant' under the 
reference GCI400DC, 

- a microprocessor, referenced TBP1 for the 
station PP1 and TBP6 for the station PP6, each 
microprocessor having two computer links of the serial 
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type, one LSI to LS6 to the data server SD and the 
other LL1 to LL6 to the reader /encoder . 
The data server SD comprises: 

- a computer such as a personal computer PC which 
is equipped with a multiway card CM, a multitask real- 
time system, 

- for example six peripheral encrypting devices 
DEP1 to DEP6, the initials DEP being the acronym for 
the English expression "Data Encryption Peripheral", 
these peripheral devices DEP1 to DEP 6 each being 
connected to the computer PC by a serial link LD1 to 
LD6 on the multiway card CM. 

In the diagram in Figure 1, the data server SD is 
designed to manage four customizing machines MP1 to MP4 
each having six customizing stations, each customizing 
station being connected by a serial link LS to an input 
of the multiway card CM. 

The function of the computer PC is to manage the 
cryptographic data requests of each customizing station 
by addressing the peripheral devices DEP1 to DEP 6 via 
the serial links LD1 to LD6 and transmitting the 
cryptographic data to the customizing appliance via the 
serial links LSI to LS6. 

In this example embodiment, each microprocessor 
TBP is equipped with two serial links LS, one LS to the 
computer PC and the other LLE to the reader/encoder LE . 
However, where the microprocessor TBP is equipped not 
with two serial links but with an eight-conductor 
connector COS, for example, some of these conductors 
may ^be used for / effecting serial links using an 



adaptation device DA wnich comprises two adaptors for 
serial connection SLAa, SLA 2 and a . switching circuit RS 
according to the diagram in Figure 2 . 

Figure 2 depicts the eight terminal of an output 
5 connector COS comprising: 

- a terminal RST for resetting, 

- a terminal V pp for the programming voltage, 

- a terminal V cc for the supply voltage, 

- a terminal CLK for . t#e clock signal, 
10 - a terminal I/O toy the data signals, 

- a terminal GNP Jlot the earth potential, 

- a terminal FUSE 1 for a first programming, fuse, 

- a terminal /FUSE 2 for a second programming fuse. 
To effect a single serial link, the terminals CLK, 

15 I/O, V cc and GND are connected to an adaptor which 
supplies the serial signals on two output terminals Rx 
and Tx. 

To effect two serial links, the terminals CLK and 
I/O are connected to a double switch RS whose position 

20 is controlled by the signal on the terminal V pp . A 
first switch RSI is connected to the clock terminal CLK 
by its input terminal and to the input terminal CLK of 
two adaptors SLA1 and SLA2 by its two output terminals. 
A second switch RS2 is connected to the terminal I/O by 

25 its input terminal and to the input terminals I/O of 
the two adaptors SLA1 and SLA2 by its two output 
terminals. 

The terminal V pp is connected to the two switches 
RSI and RS2 whilst the terminals V cc and GND are 
30 connected to the adaptors SLA1 and SLA2 . These 
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adaptors SLA1 and. SLA2 each have two output terminals 
Rxl, Txl and Rx2 and Tx2 which- effect, for example 
respectively, the serial link LS with the server SD and 
the serial link LLE with the reader /encoder LE . 

As is known, the terminal Txl or Tx2 is allocated 
to the transmission of the signal whilst the terminal 
Rxl or Rx2 is allocated to the reception of the signal. 



